Information Security non-Classified Networks Lead

Job Title: Information Security non-Classified Networks Lead

Location: Guildford, with flexibility for some hybrid working.

What you’ll be doing

• Provide security leadership and management within your area of responsibility in line with the wider security functions strategic objectives.
• Take the lead in customer engagements, audits, assessments and reporting for both Group and customer compliance.
• Provide technical leadership and guidance to projects, have a good understanding of common security architecture principles.
• Understand and apply industry security regulations and certifications to different networks and business areas.
• Consume relevant threat intelligence feeds and highlight any key emerging risks when necessary.
• Timely and effective processing of security helpdesk requests within defined SLA's.
• Promote and provide security awareness for the company – ability to communicate confidently to stakeholders is key.
• Promote high security standards and integrity.
• Travel to various sites within the UK to conduct audits, risk assessments and stakeholder meetings.
• Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities, to ensure effectiveness of security controls.
• Policy and Standards - Develop and enforce technical security policy, procedures, standards and guidance, to ensure policies are implemented effectively across projects and teams.
• Continuous Improvement - Identify gaps and areas for improvement in security controls and processes. Drive initiatives to enhance security assurance capabilities.
• Stakeholder Communication and Reporting - Provide detailed assurance reports to stakeholders, including Leadership, Audit, and Technical teams. Communicate technical risks and mitigation strategies effectively to technical and non-technical audiences.
• Collaboration with Teams - Work closely with engineering, development, and operations teams to embed Information Security into workflows. Foster collaboration between IT support, assurance, governance, and risk management functions.
• Security Assurance Framework Development – Review and revise Information Security frameworks for assessing the security posture of systems, applications, and infrastructure. Ensure alignment with organisational objectives, industry standards, and compliance requirements.

Your skills and experiences

• Expert understanding of security concepts and principles (CIA triad, risk management, compliance frameworks applicable to classified networks and systems, etc.);
• Expert understanding and application of Information Security standards, including NIST800-53, Cyber Essentials Plus, DEF STAN 05-138/9, and ISO27001;
• Robust knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs – Status Reporting and Dashboard for senior management);
• Possess strong organisational, time management and diplomacy skills;
• Independent tasking and project completion with little supervision is a must;
• Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management;
• Excellent written and verbal communications;
• Expert application of the MS Office, and other widely used office automation software;
• Assist with any security tasks as deemed appropriate by the Head of Information Security or Chief Security Officer;
• Must ideally already hold UKSV;
• Must be a UK National.

Benefits

As well as a competitive pension scheme, BAE also offers employee share plans, an extensive range of flexible discounted health, wellbeing & lifestyle benefits, including a green car scheme, private health plans and shopping discounts.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals.

Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation.